naftiko: 1.0.0-alpha2
info:
  label: Palo Alto Networks IoT Security API — Vulnerabilities
  description: 'Palo Alto Networks IoT Security API — Vulnerabilities. 2 operations. Lead operation: Palo Alto Networks Get
    Vulnerability Details. Self-contained Naftiko capability covering one Palo Alto Networks business surface.'
  tags:
  - Palo Alto Networks
  - Vulnerabilities
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    PALO_ALTO_NETWORKS_API_KEY: PALO_ALTO_NETWORKS_API_KEY
capability:
  consumes:
  - type: http
    namespace: palo-alto-iot-security-vulnerabilities
    baseUri: https://{customer}.iot.paloaltonetworks.com/pub/v4.0
    description: Palo Alto Networks IoT Security API — Vulnerabilities business capability. Self-contained, no shared references.
    resources:
    - name: vulnerability-detail
      path: /vulnerability/detail
      operations:
      - name: getvulnerabilitydetail
        method: GET
        description: Palo Alto Networks Get Vulnerability Details
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: customerid
          in: query
          type: string
          description: Customer tenant identifier.
          required: true
        - name: deviceid
          in: query
          type: string
          description: Unique device identifier.
          required: true
        - name: vulnerability_name
          in: query
          type: string
          description: Name of the vulnerability to retrieve details for.
          required: true
    - name: vulnerability-list
      path: /vulnerability/list
      operations:
      - name: listvulnerabilities
        method: GET
        description: Palo Alto Networks List Vulnerabilities
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: customerid
          in: query
          type: string
          description: Customer tenant identifier.
          required: true
        - name: offset
          in: query
          type: integer
          description: Pagination offset for results.
        - name: pagelength
          in: query
          type: integer
          description: Number of vulnerability records to return per page.
        - name: stime
          in: query
          type: string
          description: Start time filter as a Unix epoch timestamp in seconds.
        - name: etime
          in: query
          type: string
          description: End time filter as a Unix epoch timestamp in seconds.
    authentication:
      type: apikey
      key: X-Key-Id
      value: '{{env.PALO_ALTO_NETWORKS_API_KEY}}'
      placement: header
  exposes:
  - type: rest
    namespace: palo-alto-iot-security-vulnerabilities-rest
    port: 8080
    description: REST adapter for Palo Alto Networks IoT Security API — Vulnerabilities. One Spectral-compliant resource per
      consumed operation, prefixed with /v1.
    resources:
    - path: /v1/vulnerability/detail
      name: vulnerability-detail
      description: REST surface for vulnerability-detail.
      operations:
      - method: GET
        name: getvulnerabilitydetail
        description: Palo Alto Networks Get Vulnerability Details
        call: palo-alto-iot-security-vulnerabilities.getvulnerabilitydetail
        with:
          customerid: rest.customerid
          deviceid: rest.deviceid
          vulnerability_name: rest.vulnerability_name
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/vulnerability/list
      name: vulnerability-list
      description: REST surface for vulnerability-list.
      operations:
      - method: GET
        name: listvulnerabilities
        description: Palo Alto Networks List Vulnerabilities
        call: palo-alto-iot-security-vulnerabilities.listvulnerabilities
        with:
          customerid: rest.customerid
          offset: rest.offset
          pagelength: rest.pagelength
          stime: rest.stime
          etime: rest.etime
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: palo-alto-iot-security-vulnerabilities-mcp
    port: 9090
    transport: http
    description: MCP adapter for Palo Alto Networks IoT Security API — Vulnerabilities. One tool per consumed operation, routed
      inline through this capability's consumes block.
    tools:
    - name: palo-alto-networks-get-vulnerability
      description: Palo Alto Networks Get Vulnerability Details
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: palo-alto-iot-security-vulnerabilities.getvulnerabilitydetail
      with:
        customerid: tools.customerid
        deviceid: tools.deviceid
        vulnerability_name: tools.vulnerability_name
      outputParameters:
      - type: object
        mapping: $.
    - name: palo-alto-networks-list-vulnerabilities
      description: Palo Alto Networks List Vulnerabilities
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: palo-alto-iot-security-vulnerabilities.listvulnerabilities
      with:
        customerid: tools.customerid
        offset: tools.offset
        pagelength: tools.pagelength
        stime: tools.stime
        etime: tools.etime
      outputParameters:
      - type: object
        mapping: $.